Step-by-step guide
The below file names and directories are used by default if the environment is set up by AMS.
The below file names and directories are used by default if the environment is set up by AMS.
SSH to Dispatcher (e.g: ssh user@ip)
Go to /etc/httpd/conf folder and open the file clientheaders.any file to edit (e.g: sudo vim clientheaders.any)
Append your headers to this file. As an example i’m adding “X-Forwarded-Proto“, “Pragma” and “Cache-Control“
Save and close the file
My file looks like this
Change directory to /etc/httpd/conf.d and open the dispatcher_vhosts.config file
Add the below line to the end of the file:NameVirtualHost *:443
<VirtualHost *:443>
Header always append Pragma “no-Cache”
Header always append Cache-Control “no-Cache, no-Store”
RequestHeader set X-Forward-Proto “https”
RequestHeader set Pragma “no-cache”
RequestHeader set Cache-Control “no-Cache, no-Store”
</VirtualHost>
Header always append Pragma “no-Cache”
Header always append Cache-Control “no-Cache, no-Store”
RequestHeader set X-Forward-Proto “https”
RequestHeader set Pragma “no-cache”
RequestHeader set Cache-Control “no-Cache, no-Store”
</VirtualHost>
I added this under “443” because the AEM url is always accessed through “https”. That is how it was configured by AMS
Restart Apache. (e.g: sudo /usr/sbin/apachectl restart )
To test if the above headers appearing on the browser
Open the site Chrome
Right click and open Inspect > Network > Under View, choose “Use small request rows” and refresh the browser.
You will see activity on the “inspect window. Choose the html page from that, then you will see all the headers. Like below.
Note
Header attribue above sets the values for Response Headers and RequestHeader are set for Request Headers. If you expand the above screenshot you can see the values separately under Response Header and Request Headers.
While the requirement to show headers under Response Headers and Request Headers is met, i have not elaborately tested how these would affect Dispatcher’s ability to function normally, caching content etc. Please be aware of this.
I have done this as a requirement by one of our customers to have these headers for every page. These were required to be set on every page by Hailstorm Security Scan, otherwise, the scan would mark these as “Warnings” to the AEM Platforms as not being secure.
Source: https://techinpieces.com/how-to-add-custom-headers-to-dispatcher/
Restart Apache. (e.g: sudo /usr/sbin/apachectl restart )
To test if the above headers appearing on the browser
Open the site Chrome
Right click and open Inspect > Network > Under View, choose “Use small request rows” and refresh the browser.
You will see activity on the “inspect window. Choose the html page from that, then you will see all the headers. Like below.
Note
Header attribue above sets the values for Response Headers and RequestHeader are set for Request Headers. If you expand the above screenshot you can see the values separately under Response Header and Request Headers.
While the requirement to show headers under Response Headers and Request Headers is met, i have not elaborately tested how these would affect Dispatcher’s ability to function normally, caching content etc. Please be aware of this.
I have done this as a requirement by one of our customers to have these headers for every page. These were required to be set on every page by Hailstorm Security Scan, otherwise, the scan would mark these as “Warnings” to the AEM Platforms as not being secure.
Source: https://techinpieces.com/how-to-add-custom-headers-to-dispatcher/
No comments:
Post a Comment
If you have any doubts or questions, please let us know.